Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Advertisements

leanneqld

Posted 28 April 2006 - 08:13 AM

wannabe1

Posted 28 April 2006 - 04:05 PM

wannabe1

Tech Staff

Technician

16,645 posts

Before we go any further, you need to get a log posted in Malware. I can't even run my analyzer on the HJT log without pulling alerts from my AV application. Hits on a Bloodhound trojan. Get it cleaned up so we can work on it.

leanneqld

Posted 28 April 2006 - 11:22 PM

leanneqld

Member

Topic Starter

Member

76 posts

hi, I'm back. I got the thumbs up from the malware people
Also I have installed a wirless card to the problem pc so it is now online

Now that i have taken out the video card, everytime I log on there's a search for new software to install for the new hardware.
The cd-rom drive as gone from d: drive to E: drive(not a problenm though is it?)

wannabe1

Posted 28 April 2006 - 11:50 PM

You can probably reinstall the video card now it should work fine. Devices, particularly Network cards and Video cards can cause a lot of problems during installs and inplace upgrades.

Looks like OwNt got rid of a lot of junk! That last log wouldn't even load in my analyzer....

Bring me up to speed...Are there any major issues now? The cd drive letter is no biggie..we can change it if you need to, but we'll need to look at the Drive asignments in Windows Management before we do that.

leanneqld

Posted 29 April 2006 - 03:08 AM

leanneqld

Member

Topic Starter

Member

76 posts

HI, from the malware posts...
"Second, it looks like your google toolbar and norton antivirus installation are damaged, you may wish to re-install both after we are finished."
I would like to remove all of Nortons and put AVG on there as I'm not sure if they want to renew nortons.
Can you help with this or back to malware as i have heard nortons isn't straightforward to remove.

Next, having used the repair option over and over and moving files and all our previous work, is it ok now to start uninstalling all the useless programs that were installed?

Also, i want to remove all the extra user accounts and just leave 1, if i remove the others does that get rid of all their files/folders or do i have to manually do that?

and lastly, the only forseeable problem is reinstalling the graphics card...but i will give it a go and see what happens.

wannabe1

Posted 29 April 2006 - 07:38 AM

wannabe1

Tech Staff

Technician

16,645 posts

Norton is a pig in "oh so many ways"...Try to remove it from Add or Remove Programs. Remove the main application first. Then remove Live Update...then Live Reg. After all this machine has been through, It's going to shred when it uninstalls, so run SymNRT and then SYMMSICLEANUP to finish it off.

You should remove the Google toolbar, too. You should be able to do that from Add or Remove Programs, as Well. (Use Firefox...it has the Google Toolbar features built in.)

Yes, you can remove the applications we've used that you don't think you'll need again. You know where to find them should they be required again.

When you remove the unwanted user accounts, you will be given the option to delete each user's files...XP does a pretty good job of doing that on it's own. Just make sure the remaining account has full Admin permissions.

Reinstalling the video card shouldn't be too bad. I would suggest going to the manufacturer's website and downloading the most recent drivers for it first...that might eliminate any headaches if it comes on looking all "goofy"

When you've done all this, run Disk Cleanup and Disk Defragmenter from System tools to tidy up the drive.

You should be good to go after all this... ...Have your friend be a little more careful what they download and where they download from. Most of this issue was caused by the malware infection. It was the worst I have seen in quite a while.

If you have any problems or questions...come back to this thread. I will be subscribed to it for 14 days of inactivity. After that, either start a new topic or PM me that you have posted to this one.

leanneqld

Posted 29 April 2006 - 05:59 PM

Cannot remove nortons from add/remove , "uninstallation has failed"The uninstallation encountered an error and was unable to remove the application.

Nortons internet security.......again cannot remove via add/remove..."to remove NIS or reset your password click ok, then click the programs change button"i did that and then i got this message
"a norton internet security account with supervisor access must be logged in to uninstall this product. If NS is not running, click the start menu, select and log in"

Next..tried to remove MSN Music vis add/remove.."error: could not locate the inf file c:\windows INF\msninstal.inf

Unable to remove google toolbar via add/remove...i click on that and nothing happens at all

wannabe1

Posted 29 April 2006 - 06:27 PM

Run SymNRT on the Norton applications and follow up with the SYMMSICLEANUP...that should do away with the Norton.

Reinstall the Google toolbar and then uninstall it...

Many of the entries in Add or Remove Programs are probably just a registry entry for the program that is not really there. We faily well hacked this machine to pieces with all the stuff we did to it. When we replaced the registry hive, we effectively removed many of the applications referred to. To remove the entry in Add or Remove, do the following.

Open Registry Editor and expand HKEY_LOCAL_MACHINE, then SOFTWARE, then Microsoft, then Windows, then CurrentVersion, and finally Uninstall

Under this key will be a bunch of numeric keys. Click on them one at a time and look in the right pane for the entry "Display Name"...if the value for Display Name is one of the programs you want to remove from Add or Remove Programs, delete the numeric key in the left pane.

leanneqld

Posted 29 April 2006 - 06:43 PM

leanneqld

Member

Topic Starter

Member

76 posts

ggrrrr....from the NRT.....
"manual application removal"
the following programs were found. these must be removed through add/remove programs before Norton RT can proceed
"Norton internet security or personal firewall 2003 or earlier"

so I tried to launch NIS from the shorcut on the desktop and get a norton ANTIVIRUS internal program error message followed by the windows installer popping up and preparing to install which it can't of course
so, how do i get rid of NIS?????

wannabe1

Posted 29 April 2006 - 07:05 PM

leanneqld

Posted 29 April 2006 - 07:17 PM

leanneqld

Member

Topic Starter

Member

76 posts

BINGO, hip hip hooray....that worked....now i tried to run symNRT but it said instances of live update and reg were running and i had to end that first...how do i do that..i ctri-alt-del and looked at the processes..found a navapsvc.exe but wasn't sure whether to end that or not